M1034 Limit Hardware Installation
Block users or groups from installing or using unapproved hardware on systems, including USB devices.
| Item | Value |
|---|---|
| ID | M1034 |
| Version | 1.0 |
| Created | 11 June 2019 |
| Last Modified | 09 June 2020 |
| Navigation Layer | View In ATT&CK® Navigator |
Techniques Addressed by Mitigation
| Domain | ID | Name | Use |
|---|---|---|---|
| enterprise | T1052 | Exfiltration Over Physical Medium | Limit the use of USB devices and removable media within a network. |
| enterprise | T1052.001 | Exfiltration over USB | Limit the use of USB devices and removable media within a network. |
| enterprise | T1200 | Hardware Additions | Block unknown devices and accessories by endpoint security configuration and monitoring agent. |
| enterprise | T1091 | Replication Through Removable Media | Limit the use of USB devices and removable media within a network. |